Re: [nfsv4] Comments on draft-ietf-nfsv4-lfs-registry-00
Thomas Haynes <thomas.haynes@primarydata.com> Tue, 02 September 2014 18:00 UTC
Return-Path: <thomas.haynes@primarydata.com>
X-Original-To: nfsv4@ietfa.amsl.com
Delivered-To: nfsv4@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EE6941A0601 for <nfsv4@ietfa.amsl.com>; Tue, 2 Sep 2014 11:00:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id r2cwDq1Ejo-U for <nfsv4@ietfa.amsl.com>; Tue, 2 Sep 2014 10:59:57 -0700 (PDT)
Received: from mail-ig0-f176.google.com (mail-ig0-f176.google.com [209.85.213.176]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 787671A04AB for <nfsv4@ietf.org>; Tue, 2 Sep 2014 10:59:49 -0700 (PDT)
Received: by mail-ig0-f176.google.com with SMTP id hn18so14642205igb.9 for <nfsv4@ietf.org>; Tue, 02 Sep 2014 10:59:48 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:content-type:mime-version:subject:from :in-reply-to:date:cc:message-id:references:to; bh=SX0JZUX6Cyi8cGIquOXBMZ70Y8Osb7mF8P6um0OzXgI=; b=Ivr5xJ4BbtQ/fp73Ywb2x1pdhvU4Xy96xabFf1InXOBKy2yUZygHQefJyGFxTD9KWo esMQcq/umfdGxiAxBqg/ra78pBhr4/vUoMzYkOsyLrlAOorAv08QyhAleYpaLfFh8R4y 2yz+6qfJ/7Fz1M4JypysK98t4GK9XSrQzV9r+ePpfcIgPuvtswy+fxA+GzzcnNUhk17Q ODszKIWRuiUHiJxocEPpZfFRCWcRRQ2KG5ReV6fJpG7ar3jNZF0nGuSTkueNTsU7yYX5 rU3cszzH6cBqOu/uH5gYWOygj9Y/hgYn7GrMSuyhzjxMRFSC/v7GMMkLJ86Xjn5R9BNk NwGA==
X-Gm-Message-State: ALoCoQkAlK1GF9IRUgrTqI59JDeG1UbccN/gsqVeZOuAGSiavbmAm27PKoIg+ucg3EHFO25awyBp
X-Received: by 10.43.154.145 with SMTP id le17mr34045124icc.20.1409680788775; Tue, 02 Sep 2014 10:59:48 -0700 (PDT)
Received: from ?IPv6:2601:4:4b00:7d0:b5d3:3ea2:5e6d:b68a? ([2601:4:4b00:7d0:b5d3:3ea2:5e6d:b68a]) by mx.google.com with ESMTPSA id w8sm40471230igl.13.2014.09.02.10.59.48 for <multiple recipients> (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Tue, 02 Sep 2014 10:59:48 -0700 (PDT)
Content-Type: multipart/alternative; boundary="Apple-Mail=_A1EABA31-539B-474A-9384-E06533B0E5E1"
Mime-Version: 1.0 (Mac OS X Mail 7.3 \(1878.6\))
From: Thomas Haynes <thomas.haynes@primarydata.com>
In-Reply-To: <CADaq8jfMc88AGhTwp3jcP6+NT9Oi11+njDh9E2q+-3kB12_WCA@mail.gmail.com>
Date: Tue, 02 Sep 2014 13:59:45 -0400
Message-Id: <D58BDC58-FEC9-4019-9FD3-E3955FCC3F4A@primarydata.com>
References: <CADaq8jfMc88AGhTwp3jcP6+NT9Oi11+njDh9E2q+-3kB12_WCA@mail.gmail.com>
To: David Noveck <davenoveck@gmail.com>
X-Mailer: Apple Mail (2.1878.6)
Archived-At: http://mailarchive.ietf.org/arch/msg/nfsv4/Y8i1jjn8iR6DIqyfUBGGW0iPBG4
Cc: "nfsv4@ietf.org" <nfsv4@ietf.org>, jarret.lu@oracle.com
Subject: Re: [nfsv4] Comments on draft-ietf-nfsv4-lfs-registry-00
X-BeenThere: nfsv4@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: NFSv4 Working Group <nfsv4.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/nfsv4>, <mailto:nfsv4-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/nfsv4/>
List-Post: <mailto:nfsv4@ietf.org>
List-Help: <mailto:nfsv4-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/nfsv4>, <mailto:nfsv4-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 02 Sep 2014 18:00:01 -0000
On Aug 31, 2014, at 9:58 AM, David Noveck <davenoveck@gmail.com> wrote: > Here's my stab at an abstract of the document as I understood its intent. You can adopt it, in whole or in part, if it works for you. > > In the past Mandatory Access Control (MAC) systems have used particular > rigidly-specified policies which were implemented in particular protocols > and platforms. As MAC systems become more widely deployed, additional > flexibility in mechanism and policy will be required. While traditional > trusted systems implemented Multi-Level Security (MLS) and integrity > models, modern systems have expanded to include technologies such as > type enforcement. Due to the wide range of policies and mechanisms which > need to be accommodated, it is unlikely that use of a single security label > format and model will be viable. > > To allow multiple MAC mechanisms and label formats to co-exist in a network, this document proposes a registry of label format specifications. This > registry would contain label format identifiers and would provide for the > association of each such identifier with a corresponding extensive document > document outlining the exact syntax and use of the particular label > format. > ^^ Thanks, taken > With regard to the second paragraph of section 1, I don't think you are harsh enough about the complexity. It is not enough to say the complexity is "unneeded". I'd say it is actively harmful. How about the following: > > One solution might be to define a single label format which consists of the > union of the requirements of all MAC models/implementations, known at a > given time. This approach is not desirable because it introduces an > environment where many MAC models would either have blank fields for many > of the label's components or where many implementations would ignore > many of values that are present altogether. The resulting complexity > would be likely to result in a confusing situation in which the interaction > of fields that that derive from different MAC models is never clearly > specified and the addition of new models or extension of existing models > is unduly difficult. > > An additional consideration is that if a policy authority or identifier > field is specified in the label format it would require a robust > description that encompassed multiple MAC models where implaementation would lock policy administration into the > described model. > ^^ Thanks, taken > In section 2, there's a problem with the definition of "label format specification". This same term has a different definition in section 6, and the definition in section 2, seems to match "Label format selector" in section 6. Ohh, good catch! So, to be consistent with RFC 7204: Section 2: Label Format Specifier: an identifier used by the client to establish the syntactic format of the security label and the semantic meaning of its components. Label Format Specification: is a reference to a stable, public document that specifies the label format. Section 6: Label Format Specifier: An integer number that maps to a particular label format, e.g., the CALIPSO label format defined by [RFC5570]. The name space of this identifier has the range of 0..65,535. ... Label Format Specification: A reference to a stable, public document that specifies the label format, e.g., an URL to [RFC5570]. I'd like to keep both in place. Section 2 helps the reader understand the terms for the rest of the document and Section 6 provides specifics for the registry format. > _______________________________________________ > nfsv4 mailing list > nfsv4@ietf.org > https://www.ietf.org/mailman/listinfo/nfsv4
- [nfsv4] Comments on draft-ietf-nfsv4-lfs-registry… David Noveck
- Re: [nfsv4] Comments on draft-ietf-nfsv4-lfs-regi… Thomas Haynes